kernel-packages team mailing list archive

Thread
Date

[Bug 1373176] [NEW] unix_socket_pathname.sh confined client dgram test fails

To: kernel-packages@xxxxxxxxxxxxxxxxxxx
From: Tyler Hicks <tyhicks@xxxxxxxxxxxxx>
Date: Wed, 24 Sep 2014 00:07:59 -0000
Reply-to: Bug 1373176 <1373176@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

This is an existing failure that is uncovered by a new test. Note that
this failure only occurs with the dgram tests and passes with the
identical stream and seqpacket tests.

This bug may be a dupe of bug #1373174

* The failure:

Error: unix_socket failed. Test 'AF_UNIX pathname socket (dgram); confined client w/ access (rw)' was expected to 'pass'. Reason for failure 'FAIL CLIENT - bind: Permission denied
FAIL - recvfrom: Interrupted system call'

* The denial:

apparmor="DENIED" operation="mknod"
profile="/home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client"
name="/tmp/sdtest.16731-7661-GMfyNV/aa_sock.client" pid=17312
comm="unix_socket_cli" requested_mask="c" denied_mask="c" fsuid=0 ouid=0

* The profile:

/home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket {
  /etc/ld.so.cache r,
  /proc/*/attr/current w,
  /dev/urandom r,
  /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket rix,
  /lib/x86_64-linux-gnu/libc-2.19.so mr,
  /lib/x86_64-linux-gnu/ld-2.19.so rix,
  /tmp/sdtest.16731-7661-GMfyNV/output.unix_socket w,
  /tmp/sdtest.16731-7661-GMfyNV/aa_sock rw,
  /tmp/sdtest.16731-7661-GMfyNV/aa_sock.client rw,
  unix (create,getopt,setopt,getattr),
  /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client px,
}

/home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client {
  /etc/ld.so.cache r,
  /proc/*/attr/current w,
  /dev/urandom r,
  /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client rix,
  /lib/x86_64-linux-gnu/libc-2.19.so mr,
  /lib/x86_64-linux-gnu/ld-2.19.so rix,
  /tmp/sdtest.16731-7661-GMfyNV/output.unix_socket w,
  /tmp/sdtest.16731-7661-GMfyNV/aa_sock rw,
  unix (create,getopt,setopt,getattr),
}

** Affects: linux (Ubuntu)
     Importance: Undecided
     Assignee: John Johansen (jjohansen)
         Status: Triaged


** Tags: apparmor bot-stop-nagging

** Attachment added: "strace of test failure"
   https://bugs.launchpad.net/bugs/1373176/+attachment/4212939/+files/strace

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1373176

Title:
  unix_socket_pathname.sh confined client dgram test fails

Status in “linux” package in Ubuntu:
  Triaged

Bug description:
  This is an existing failure that is uncovered by a new test. Note that
  this failure only occurs with the dgram tests and passes with the
  identical stream and seqpacket tests.

  This bug may be a dupe of bug #1373174

  * The failure:

  Error: unix_socket failed. Test 'AF_UNIX pathname socket (dgram); confined client w/ access (rw)' was expected to 'pass'. Reason for failure 'FAIL CLIENT - bind: Permission denied
  FAIL - recvfrom: Interrupted system call'

  * The denial:

  apparmor="DENIED" operation="mknod"
  profile="/home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client"
  name="/tmp/sdtest.16731-7661-GMfyNV/aa_sock.client" pid=17312
  comm="unix_socket_cli" requested_mask="c" denied_mask="c" fsuid=0
  ouid=0

  * The profile:

  /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket {
    /etc/ld.so.cache r,
    /proc/*/attr/current w,
    /dev/urandom r,
    /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket rix,
    /lib/x86_64-linux-gnu/libc-2.19.so mr,
    /lib/x86_64-linux-gnu/ld-2.19.so rix,
    /tmp/sdtest.16731-7661-GMfyNV/output.unix_socket w,
    /tmp/sdtest.16731-7661-GMfyNV/aa_sock rw,
    /tmp/sdtest.16731-7661-GMfyNV/aa_sock.client rw,
    unix (create,getopt,setopt,getattr),
    /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client px,
  }

  /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client {
    /etc/ld.so.cache r,
    /proc/*/attr/current w,
    /dev/urandom r,
    /home/tyhicks/apparmor.git/tests/regression/apparmor/unix_socket_client rix,
    /lib/x86_64-linux-gnu/libc-2.19.so mr,
    /lib/x86_64-linux-gnu/ld-2.19.so rix,
    /tmp/sdtest.16731-7661-GMfyNV/output.unix_socket w,
    /tmp/sdtest.16731-7661-GMfyNV/aa_sock rw,
    unix (create,getopt,setopt,getattr),
  }

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1373176/+subscriptions

Follow ups

[Bug 1373176] Re: unix_socket_pathname.sh confined client dgram test fails
From: Tyler Hicks, 2014-09-30
[Bug 1373176] WifiSyslog.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] UdevLog.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] UdevDb.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] PulseList.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] ProcModules.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] ProcInterrupts.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] ProcEnviron.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] ProcCpuinfo.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] Lspci.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] CurrentDmesg.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] CRDA.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] BootDmesg.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] AudioDevicesInUse.txt
From: Tyler Hicks, 2014-09-24
[Bug 1373176] Re: unix_socket_pathname.sh confined client dgram test fails
From: Tyler Hicks, 2014-09-24
[Bug 1373176] Re: unix_socket_pathname.sh confined client dgram test fails
From: Jamie Strandboge, 2014-09-24
[Bug 1373176] [NEW] unix_socket_pathname.sh confined client dgram test fails
From: Tyler Hicks, 2014-09-24

References

[Bug 1373176] [NEW] unix_socket_pathname.sh confined client dgram test fails
From: Tyler Hicks, 2014-09-24